Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/d04f1b-074c-495e-a431-76b1ae62f072/1/nXXPbGAZ8FnkZeTesgTNJCvUtGU.mft
File: nXXPbGAZ8FnkZeTesgTNJCvUtGU.mft (raw, json)
Hash identifier: XsA0HBvIP3AocM3njoMvmp7Zz86/E7hzmlm7gufefr4=
Subject key identifier: 87:71:45:90:C0:13:63:7D:39:EB:D6:B7:41:CA:D3:A6:71:35:A1:98
Authority key identifier: 9D:75:CF:6C:60:19:F0:59:E4:65:E4:DE:B2:04:CD:24:2B:D4:B4:65
Certificate issuer: /CN=9d75cf6c6019f059e465e4deb204cd242bd4b465
Certificate serial: 019D284D4BB8272D8D0C27E8DFA89C2E7C54
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nXXPbGAZ8FnkZeTesgTNJCvUtGU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/d04f1b-074c-495e-a431-76b1ae62f072/1/nXXPbGAZ8FnkZeTesgTNJCvUtGU.mft
Manifest number: 14A9
Signing time: Thu 26 Mar 2026 04:00:47 +0000
Manifest this update: Thu 26 Mar 2026 04:00:47 +0000
Manifest next update: Fri 27 Mar 2026 04:00:47 +0000
Files and hashes: 1: _3hDeG2_gP2OF_kOwQ_-RVY6AGk.roa (hash: MhtbxEEzpA8s8MGWNiwEnIVTeslC4E8X2PXN0HorBxY=)
2: nXXPbGAZ8FnkZeTesgTNJCvUtGU.crl (hash: SCeameNHKHUHHhm1EuDGQ5JbZtCzK3iT4xWGXWebwrs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/83/d04f1b-074c-495e-a431-76b1ae62f072/1/nXXPbGAZ8FnkZeTesgTNJCvUtGU.crl
rsync://rpki.ripe.net/repository/DEFAULT/83/d04f1b-074c-495e-a431-76b1ae62f072/1/nXXPbGAZ8FnkZeTesgTNJCvUtGU.mft
rsync://rpki.ripe.net/repository/DEFAULT/nXXPbGAZ8FnkZeTesgTNJCvUtGU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:28:4d:4b:b8:27:2d:8d:0c:27:e8:df:a8:9c:2e:7c:54
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9d75cf6c6019f059e465e4deb204cd242bd4b465
Validity
Not Before: Mar 26 04:00:47 2026 GMT
Not After : Mar 27 04:00:47 2026 GMT
Subject: CN=87714590c013637d39ebd6b741cad3a67135a198
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:d1:8b:1c:82:f2:6a:42:9e:e1:36:45:7d:72:
6f:a6:57:7e:99:8d:08:31:60:63:df:43:b5:ec:3e:
1d:a9:c6:b1:5e:6e:9e:28:20:d1:91:6e:03:06:38:
32:63:8a:0c:c7:c1:ae:48:c7:9c:49:23:fc:5b:75:
0d:34:b9:e1:2d:aa:fb:42:a2:0f:d0:c6:f8:d2:d3:
b6:f8:33:ca:fb:ef:a5:27:7f:8f:65:6a:21:04:0a:
f1:0b:b3:13:99:f2:94:ad:d8:97:21:cd:1b:1f:b4:
da:8f:a9:22:7b:8f:c3:d3:7a:0a:0f:b8:fb:09:64:
05:98:0b:ab:75:19:86:47:df:ee:9f:41:36:0c:83:
f6:df:92:70:86:56:2d:f2:3c:fe:e4:2c:33:06:ae:
f7:4e:f6:31:48:a3:ee:95:45:83:c5:e3:4b:27:a7:
44:d7:9f:a8:0d:25:29:00:8e:a2:f1:bb:ce:e7:76:
e6:5e:79:16:36:d9:82:3d:b2:cf:c0:4b:3d:72:06:
11:04:f0:46:91:35:b8:23:cf:c7:a4:d9:a7:c7:e3:
9a:36:31:39:da:bd:88:22:a8:df:eb:98:29:00:6d:
80:0e:5a:7b:2b:51:65:d0:3e:bf:42:9f:fa:9a:e5:
8c:ec:d9:c1:ff:6f:b8:ae:11:cd:d4:13:e2:b6:99:
6d:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:71:45:90:C0:13:63:7D:39:EB:D6:B7:41:CA:D3:A6:71:35:A1:98
X509v3 Authority Key Identifier:
keyid:9D:75:CF:6C:60:19:F0:59:E4:65:E4:DE:B2:04:CD:24:2B:D4:B4:65
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nXXPbGAZ8FnkZeTesgTNJCvUtGU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/d04f1b-074c-495e-a431-76b1ae62f072/1/nXXPbGAZ8FnkZeTesgTNJCvUtGU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/83/d04f1b-074c-495e-a431-76b1ae62f072/1/nXXPbGAZ8FnkZeTesgTNJCvUtGU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
27:af:ec:1c:3e:14:b2:2d:30:51:81:0a:85:90:4e:b2:5d:6f:
7b:bf:aa:cf:39:d7:ed:44:c5:b8:79:af:5b:94:c9:75:48:66:
9a:74:a3:a0:3a:59:06:03:2d:f9:d2:6e:36:c7:fb:a2:57:35:
c4:01:de:a9:88:99:e6:66:d6:25:95:9e:97:8c:0d:63:df:cb:
3a:78:8b:5e:44:9e:8a:65:3f:55:49:86:80:25:f5:d3:0d:26:
6c:ac:ae:4e:49:fd:d9:06:32:b1:af:18:b4:ff:4b:ce:76:5b:
0a:67:30:2d:3d:c5:ed:6c:ad:49:b3:2a:70:5f:18:45:13:6e:
90:c9:a7:61:97:cd:59:09:63:f0:f1:4f:14:09:49:ab:21:4f:
17:26:eb:a2:6a:56:6f:1d:b0:6e:c1:3f:c4:f0:e5:22:0c:9e:
ce:4e:2a:ad:27:9d:a6:54:51:91:0f:06:11:77:9a:f4:51:aa:
e6:7a:99:41:3b:6a:7b:0f:e4:6a:87:6a:c6:71:6d:38:de:09:
09:a9:4e:e4:ca:33:43:0b:13:f9:22:45:9d:c1:f7:56:85:c2:
d0:86:4c:b4:5c:4b:b1:0e:8a:01:00:86:fb:ec:92:66:c7:ce:
6d:01:af:b0:6c:bf:8c:ca:0a:17:70:6f:01:61:bd:be:be:b7:
00:de:73:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 09:53:59 2026 by rpki-client